コード例 #1
0
ファイル: client.go プロジェクト: cmc333333/fragspace
func (client *Client) redirectUrl(code string) string {
	//  We assume that the string is of the proper format; safe assumption since we reject invalid uris when saving
	baseUrl, _ := url.Parse(encryption.AESDecrypt(client.Redirect, "oauthclient.redirect"))
	query := baseUrl.Query()
	query.Add("code", code)
	baseUrl.RawQuery = query.Encode()
	return baseUrl.String()
}
コード例 #2
0
ファイル: token.go プロジェクト: cmc333333/fragspace
func tokenGet(w http.ResponseWriter, r *http.Request) {
	clientId, clientSecret := r.FormValue("client_id"), r.FormValue("client_secret")
	grantType, redirectUri, codeKey := r.FormValue("grant_type"), r.FormValue("redirect_uri"), r.FormValue("code")
	if clientId == "" || clientSecret == "" || grantType == "" || redirectUri == "" || codeKey == "" {
		invalidRequest("missing one of client_id, client_secret, grant_type, redirect_uri, or code").WriteTo(w)
		return
	}
	if grantType != "authorization_code" {
		invalidRequest("grant_type must be authorization_code").WriteTo(w)
		return
	}
	storedCode := new(codeStruct)
	context := appengine.NewContext(r)
	if _, err := memcache.Gob.Get(context, "oauth-code-"+codeKey, storedCode); err != nil {
		accessDenied("invalid code").WriteTo(w)
		return
	}
	memcache.Delete(context, "oauth-code-"+codeKey)

	if storedCode.ExpiresAt < time.Seconds() || storedCode.Client != clientId {
		accessDenied("invalid code").WriteTo(w)
		return
	}

	//  Make sure the clientID, secret, and redirect_uri are correct
	oauthClientKey := datastore.NewKey(context, "OAuthClient", clientId, 0, nil)
	client := new(Client)
	if err := datastore.Get(context, oauthClientKey, client); err != nil || base64.StdEncoding.EncodeToString(client.Secret) != clientSecret ||
		encryption.AESDecrypt(client.Redirect, "oauthclient.redirect") != redirectUri {
		accessDenied("invalid code").WriteTo(w)
		return
	}

	t := Token{storedCode.User, storedCode.Client, time.Seconds() + 60*60*24} //  lasts for 1 day
	var buff bytes.Buffer
	if err := gob.NewEncoder(&buff).Encode(&t); err != nil {
		panic(err)
		return
	}
	encrypted := encryption.AESByteEncrypt(buff.Bytes(), encryption.ConfigKey("oauthtoken"))
	fhttp.JsonResponse{tokenResp{encrypted}}.WriteTo(w)
}
コード例 #3
0
ファイル: me.go プロジェクト: cmc333333/fragspace
func (handler *meHandler) Get(r *http.Request) fhttp.Response {
	return httphelpers.ReqUser(r, func(user *model.User) fhttp.Response {
		return fhttp.JsonResponse{&getMeResponse{encryption.AESDecrypt(user.Email, "user.email")}}
	})
}